Netcom NB9W manual Dependent on vendor driver support, Tkip+Aes

Page 34

WPA

WPA requires a RADIUS server to provide client authentication. WPA also requires specification of the ‘WPA Group Rekey Interval’ which is the rate that the RADIUS server sends a new Group Key out to all clients. The Re-Keying process is part of WPA’s enhanced security. This method also requires specification of the IP address of a RADIUS server, the port on which to connect to the RADIUS server, and the shared key used to authenticate with the RADIUS server.

WPA-PSK

WPA-PSK is a special mode of WPA providing strong encryption without access to a RADIUS server.

In this mode encryption keys are automatically changed (rekeyed) and authentication re-established between devices after a specified period referred to as the ‘WPA Group Rekey Interval’.

WPA-PSK is far superior to WEP and provides stronger protection for the home/SOHO user for two reasons: first, the process used to generate the encryption key is very rigorous and second, the rekeying (or key changing) is done very quickly. This stops even the most determined hacker from gathering enough data to identify the key and so break the encryption.

WEP is confusing because of the various types of ‘network keys’ vendors use (HEX, ASCII, or passphrase) and because home users mix and match equipment from multiple vendors, all using different types of keys. But WPA-PSK employs a consistent, easy to use method to secure your network. This method uses a passphrase (also called a shared secret) that must be entered in both the NB9W and the wireless clients. This shared secret can be between 8 and 63 characters and can include special characters and spaces. For maximum security, the “WPA Pre-Shared Key” should be a random sequence of either keyboard characters (upper and lowercase letters, numbers, and punctuation) at least 20 characters long, or hexadecimal digits (numbers 0-9 and letters A-F) at least 24 hexadecimal digits long.

Note:

The less obvious, longer and more ‘random’ your ‘WPA Pre-Shared Key’, the more secure your network.

Note the following ‘WPA Encryption’ options:

 

 

 

TKIP:

 

The Temporal Key Integrity Protocol (TKIP) takes over after the initial shared secret is entered

 

 

in your wireless devices and handles the encryption and automatic rekeying.

 

 

 

AES:

 

WPA defines the use of Advanced Encryption Standard (AES) as an additional replacement

 

 

for WEP encryption. Because you may not be able to add AES support through a firmware

 

 

update to your existing wireless clients / equipment, support for AES is optional and is

 

 

dependent on vendor driver support.

 

 

 

TKIP+AES:

 

This will allow either TKIP or AES wireless clients to connect to your NB9W.

 

 

 

34

NB9/NB9W ADSL2+ VoIP Router

 

YML790 Rev8

Page 33 Page 35
Image 34
Page 33 Page 35
Contents User Guide Your ADSL2+ connection Contents Save & Reboot Adsl Broadband Wireless NB9W onlyOverview VoIP Voice over Internet ProtocolDo I need a micro filter? NB9/NB9W Package ContentsSelected terminology used in this manual Multi-purpose Gateways and In-line SplittersAdsl Requirement Minimum System RequirementsPC Requirements VoIP RequirementsGetting to Know the NB9/NB9W Colour Mode FunctionNB9W only Settings Ethernet Hub / SwitchYour Adsl and telephone service Back Panel PortsModem Access Default SettingsRestore Factory Default Setting LAN ManagementConnecting the NB9/NB9W RJ-11 Telephone line RJ-45 Ethernet cableConnecting the Cables Establishing an Adsl connection via PPPoE NB9/NB9W ADSL2+ VoIP Router Establishing your Wireless Connection for NB9W only Security WEP 64-bit HEX keySetting up your VoIP account Interface Name Don’t change the ‘Interface name’ setting Windows 2000 PCs Computer Hardware ConfigurationWindows XP PCs Windows Me PCsMac OSX Windows 95, 98 PCsWindows Vista Digging Deeper Advanced Settings BasicHome Version of the bootloaderBasic Field DescriptionBasicADSL Quick Setup Completed you will be returned to the ‘Basic Home’About SIP & VoIP Voice SettingsVoice About SIPVoice Menu Field ValueField Means VoIP Status Indicator Means Voice Dial Plan Outgoing Voice Dial PlanVoice Dial Plan Incoming Voice Dial Plan Advance Field Enter Wireless NB9W onlyWireless Setup SsidWireless Security Quick Setup Quick Security Setup 1 WEP SecurityQuick Security Setup 2 WPA-PSK Authentication and Encryption Wireless Security in DetailNetwork Keys 802.1X Network AuthenticationWEP and WPA SharedDependent on vendor driver support TkipAES TKIP+AESWPA2 Wireless Configuration Field Name AboutBuffered frames at the access point Smaller packet without using RTS/CTSMessages. The default is WMM Wi-Fi MultimediaHow to find your MAC address Wireless Mac FilterField Name Comment Wireless Station Info Wireless BridgeAvailable bridges Management Device Settings Restore Default Management Device Settings BackupManagement Device Settings Update ManagementManagement Device Settings Update Firmware Management SnmpAccess Control Services Management SntpAccess Control Password Access Control IP AddressesSave & Reboot Field AdvancedAdvanced WAN Choosing a WAN ProfileAlternative Connection Types Inc PPPoA Advanced LAN Table entry Enable Igmp SnoopingThrough your NB9/NB9W Advanced NAT Explanation Advanced NAT Port Forwarding Last port in the range here External Port StartExternal Port End Would select UDPICQ Advanced NAT Port TriggeringApplication Outgoing Port Reply Port ICUAdvanced NAT DMZ Advanced Security IP Filtering Advanced Security Parental Control Advanced QoS UDPNB9/NB9W ADSL2+ VoIP Router Advanced Routing Default Gateway Field Entry Advanced Routing Static RouteRemote router gateway address Advanced Routing Dynamic Route Advanced DNS DNS ServerAdvanced DNS Dynamic DNS Advanced DSLStatus Status DiagnosticsStatus System Log Status Route Status StatisticsStatus WAN Status ARPStatus Bridging Status DhcpStatus Igmp Proxy Problems with LAN Appendix a TroubleshootingProblems with WAN Problem with Wireless Windows XP service pack NB9/NB9W ADSL2+ VoIP Router YML790 Rev8 Mac OSX Windows Vista NB9/NB9W ADSL2+ VoIP Router NB9/NB9W ADSL2+ VoIP Router YML790 Rev8 NB9/NB9W ADSL2+ VoIP Router Now the connection is ready Appendix C How to change Wireless Security on your NB9W WEP encryptionWPA encryption Appendix D Glossary GGP DSLFTP GRESdns NICRIP SnmpTftp TCPTCP/IP TTLCopyright Information Appendix F Registration and Warranty InformationContact Information Customer InformationLimitations of Warranty Product WarrantyGNU General Public License NB9/NB9W ADSL2+ VoIP Router Purchase by Phone Click on the Buy Now buttonProduct Warranty Contact Information
Top Page Image Contents